Data slurping

China's Personal Information Protection Law, which went into effect several weeks ago requires mobile app developers to remove code that collects more user information than is required for an app to fulfil its primary function (data slurping). The collection of non-essential data can result in fines of up to 50 million yuan or 5% of a company's annual revenue. In three waves of warnings, the government has issued warnings to a total of 222 navigation, messaging, cybersecurity, lending, video, browsing, job search and general utility apps. TikTok and Microsoft (through LinkedIn) were also warned. The Cyberspace Administration of China (CAC) has published a guideline with the types of information apps are allowed to collect based on 39 categories.

7 views0 comments

Recent Posts

See All

Crypto-mining gangs

During the last few months, crypto-mining gangs have switched their modus operandi from attacking and hijacking unpatched servers to abusing the free tiers of cloud computing platforms. The gangs have

Dark Web monitoring

Cybersecurity officials are monitoring the dark web for evidence of dumped data from the HSE ransomware attack. The suspected gang behind the attack, believed to be in Russia, last year established a